- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 22190
- Проверка EDB
-
- Пройдено
- Автор
- KAROL WIESEK
- Тип уязвимости
- LOCAL
- Платформа
- LINUX
- CVE
- N/A
- Дата публикации
- 2003-01-21
Код:
source: https://www.securityfocus.com/bid/6658/info
It has been reported that a buffer overflow in escputil exists. When supplied with excessively long arguments, it is possible to overwrite stack memory.
escputil is reportedly installed setgid 'sys' on Mandrake Linux, so it is possible that this issue may be exploited to execute arbitrary code with elevated privileges. Other distributions may also be affected if the utility is installed or runs with elevated privileges.
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/21001.tar.gz
- Источник
- www.exploit-db.com